1. Home
  2. Cisco
  3. 300-715

Cisco 300-715 Online Practice Questions and Exam Preparation

300-715 Exam Details

  • Exam Code
    :300-715
  • Exam Name
    :Implementing and Configuring Cisco Identity Services Engine (SISE)
  • Certification
    :CCNP Security
  • Vendor
    :Cisco
  • Total Questions
    :448 Q&As
  • Last Updated
    :May 25, 2026

Cisco 300-715 Online Questions & Answers

  • Question 351:

    Which two default guest portals are available with Cisco ISE? (Choose two.)

    A. WiFi-access
    B. self-registered
    C. central web authentication
    D. visitor
    E. sponsored

  • Question 352:

    Which three conditions can be used for posture checking? (Choose three.)

    A. certificate
    B. operating system
    C. file
    D. application
    E. service

  • Question 353:

    An administrator adds a new network device to the Cisco ISE configuration to authenticate endpoints to the network. The RADIUS test fails after the administrator configures all of the settings in Cisco ISE and adds the proper configurations to the switch.

    What is the issue?

    A. The endpoint profile is showing as ''unknown"
    B. The endpoint does not have the appropriate credentials for network access
    C. The certificate on the switch is self-signed, not a CA-provided certificate
    D. The shared secret is incorrect on the switch or on Cisco ISE

  • Question 354:

    An administrator is configuring a switch port for use with 802.1X.

    What must be done so that the port will allow voice and multiple data endpoints?

    A. Connect a hub to the switch port to allow multiple devices access after authentication.
    B. Configure the port with the authentication host-mode multi-auth command.
    C. Connect the data devices to the port, then attach the phone behind them.
    D. Use the command authentication host-mode multi-domain on the port.

  • Question 355:

    A technician must configure MAB on an access switch. Due to a protocol error, the engineer discovers that MAB cannot authenticate. For MAB to function, which protocol must be enabled in the authorized protocol lists?

    A. EAP-TLS
    B. MS-CHAPv2
    C. Process Host Lookup
    D. CHAP

  • Question 356:

    Which two events trigger a CoA for an endpoint when CoA is enabled globally for ReAuth? (Choose two.)

    A. endpoint marked as lost in My Devices Portal
    B. addition of endpoint to My Devices Portal
    C. endpoint profile transition from Apple-Device to Apple-iPhone
    D. endpoint profile transition from Unknown to Windows 10-Workstation
    E. updating of endpoint dACL.

  • Question 357:

    A network administrator has just added a front desk receptionist account to the Cisco ISE Guest Service sponsor group. Using the Cisco ISE Guest Sponsor Portal, which guest services can the receptionist provide?

    A. Authenticate guest users to Cisco ISE.
    B. Keep track of guest user activities.
    C. Create and manage guest user accounts.
    D. Configure authorization setting for guest users.

  • Question 358:

    What is a difference between RADIUS and TACACS+?

    A. RADIUS uses connection-oriented transport, and TACACS+ uses best-effort delivery.
    B. RADIUS offers multiprotocol support, and TACACS+ supports only IP traffic.
    C. RADIUS combines authentication and authorization functions, and TACACS+ separates them.
    D. RADIUS supports command accounting, and TACACS+ does not.

  • Question 359:

    Refer to the exhibit.

    An engineer must configure central web authentication on the Cisco Wireless LAN Controller to use Cisco ISE for all guests connected to the wireless network. The Cisco Wireless LAN Controller and the Cisco ISE were configured, and the RADIUS-related ports were opened on the firewall. Which additional port must be opened to allow communication between the Cisco Wireless LAN Controller and Cisco ISE?

    A. TCP 80
    B. UDP 1645
    C. UDP 1813
    D. TCP 8443

  • Question 360:

    An engineer is configuring ISE for network device administration and has devices that support both protocols.

    What are two benefits of choosing TACACS+ over RADUs for these devices? (Choose two.)

    A. TACACS+ is FIPS compliant while RADIUS is not
    B. TACACS+ is designed for network access control while RADIUS is designed for role-based access.
    C. TACACS+ uses secure EAP-TLS while RADIUS does not.
    D. TACACS+ provides the ability to authorize specific commands while RADIUS does not
    E. TACACS+ encrypts the entire payload being sent while RADIUS only encrypts the password.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-715 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.